Sample details: bf63888f71fcdffedd41cfd733493d23

Hashes
MD5: bf63888f71fcdffedd41cfd733493d23
SHA1: 131b0da37dcffc9027cbda3b84ff4bf989b37453
SHA256: 671e4f2aaae8e2a581fee72fff9b401f202deb38e99399aae28e72497dd7464b
SSDEEP: 6144:fen8UhXGwm01RB02DfV0dvhjBj4sa3LbDD4lYMZ2wHJduWCHpRon6Gsd:03XlRuMd0dpVj8TD43XmeDsd
Details
File Type: PE32
Yara Hits
YRP/VC8_Microsoft_Corporation | YRP/Microsoft_Visual_Cpp_8 | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/HasOverlay | YRP/HasRichSignature | YRP/domain | YRP/url | YRP/contentis_base64 | YRP/anti_dbg | YRP/keylogger | YRP/win_mutex | YRP/win_registry | YRP/win_files_operation | YRP/win_hook |
Source
http://www.bikner.de/ri.php
http://www.bikner.de/ri.php
http://134.0.117.224/itexe/1100.exe